SonicWall has confirmed that the zero-day vulnerability in the SonicWall SMA100 build version 10.x is being actively exploited. SonicWall has announced the availability of an SMA 100 series firmware 10.2.0.5-29sv update to patch a zero-day vulnerability on SMA 100 series 10.x code.
With the released firmware 10.2.0.5-29sv update, customers are urged to upgrade immediately. Please note that the below workaround is not meant to be a replacement for the need to upgrade the firmware as the vulnerability is actively being exploit.
Customers who are unable to deploy the patch immediately, can enable the built-in Web Application Firewall (WAF) feature to mitigate the vulnerability in SNWLID-2021-0001 on SMA 100 series 10.x devices.
SonicWall is providing 60 complimentary days of WAF enablement to all registered SMA 100 series devices with 10.x codes to enable the mitigation techniques.
The vulnerability is currently affecting the following.
For more information, please refer to the following articles, SonicWall Overview and SonicWall Vulnerability List. If you require further information or a consultation, please reach out to our team of Cybersecurity Solutions Experts.
11 Feb 2021 | Original articles from SonicWall
Copyright © 2023 JOS (SG) Pte. Ltd. All rights reserved.
